June 14, 2024 at 03:00AM
Life360 disclosed a data breach affecting personal information stored on a customer support platform, after hackers with intent to extort the company claimed possession of stolen information. Certain details of Tile customers were potentially compromised, but no sensitive information like credit card numbers or location data was included. Life360 has reported the incident and extortion attempt to law enforcement.
Based on the meeting notes, the location tracking company Life360 experienced a data breach affecting personal information stored on a customer support platform. The breach was identified after the company was contacted by a threat actor claiming to have stolen information and intending to extort the company. The hackers targeted systems associated with Life360 subsidiary Tile.
The compromised information includes names, addresses, phone numbers, email addresses, and Tile device identification numbers. However, more sensitive information such as credit card numbers, passwords, log-in credentials, location data, and government-issued identification numbers were not included, as they were not stored on the affected customer support platform.
Life360 confirmed that no other Tile systems beyond the customer support platform were affected by the breach. The company has taken steps to further protect its systems and has reported the incident and extortion attempt to law enforcement.
Although no details on the identity of the attackers were shared, the compromised access to the Tile system occurred using compromised login credentials for an administrator account. The company has disabled these credentials and blocked unauthorized access to its platform.
No information on whether the company conceded to the extortion demands or how the data breach occurred has been provided.